CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2017-12317

The Cisco AMP For Endpoints application allows an authenticated, local attacker to access a static key value stored in the local application software. The vulnerability is due to the use of a static key value stored in the application used to encrypt the connector protection password. An attacker could exploit this vulnerability by gaining local, administrative access to a Windows host and stopping the Cisco AMP for Endpoints service. Cisco Bug IDs: CSCvg42904.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 15.3%

CVSS Severity

CVSS v3 Score 6.7

CVSS v2 Score 4.6

References

Products affected by CVE-2017-12317

Cisco » Advanced Malware Protection » Version: 3.1(10)

cpe:2.3:a:cisco:advanced_malware_protection:3.1(10)
Cisco » Advanced Malware Protection » Version: 3.1(15)

cpe:2.3:a:cisco:advanced_malware_protection:3.1(15)
Cisco » Advanced Malware Protection » Version: 4.0(0)

cpe:2.3:a:cisco:advanced_malware_protection:4.0(0)
Cisco » Advanced Malware Protection » Version: 4.0(1)

cpe:2.3:a:cisco:advanced_malware_protection:4.0(1)
Cisco » Advanced Malware Protection » Version: 4.0(2)

cpe:2.3:a:cisco:advanced_malware_protection:4.0(2)
Cisco » Advanced Malware Protection » Version: 4.1(0)

cpe:2.3:a:cisco:advanced_malware_protection:4.1(0)
Cisco » Advanced Malware Protection » Version: 4.1(1)

cpe:2.3:a:cisco:advanced_malware_protection:4.1(1)
Cisco » Advanced Malware Protection » Version: 4.1(4)

cpe:2.3:a:cisco:advanced_malware_protection:4.1(4)
Cisco » Advanced Malware Protection » Version: 4.2(0)

cpe:2.3:a:cisco:advanced_malware_protection:4.2(0)
Cisco » Advanced Malware Protection » Version: 4.2(1)

cpe:2.3:a:cisco:advanced_malware_protection:4.2(1)
Cisco » Advanced Malware Protection » Version: 4.3(0)

cpe:2.3:a:cisco:advanced_malware_protection:4.3(0)
Cisco » Advanced Malware Protection » Version: 4.3(1)

cpe:2.3:a:cisco:advanced_malware_protection:4.3(1)
Cisco » Advanced Malware Protection » Version: 4.4(0)

cpe:2.3:a:cisco:advanced_malware_protection:4.4(0)
Cisco » Advanced Malware Protection » Version: 4.4(1)

cpe:2.3:a:cisco:advanced_malware_protection:4.4(1)
Cisco » Advanced Malware Protection » Version: 4.4(2)

cpe:2.3:a:cisco:advanced_malware_protection:4.4(2)
Cisco » Advanced Malware Protection » Version: 4.4(4)

cpe:2.3:a:cisco:advanced_malware_protection:4.4(4)
Cisco » Advanced Malware Protection » Version: 5.0(1)

cpe:2.3:a:cisco:advanced_malware_protection:5.0(1)
Cisco » Advanced Malware Protection » Version: 5.0(3)

cpe:2.3:a:cisco:advanced_malware_protection:5.0(3)
Cisco » Advanced Malware Protection » Version: 5.0(5)

cpe:2.3:a:cisco:advanced_malware_protection:5.0(5)
Cisco » Advanced Malware Protection » Version: 5.0(7)

cpe:2.3:a:cisco:advanced_malware_protection:5.0(7)
Cisco » Advanced Malware Protection » Version: 5.0(9)

cpe:2.3:a:cisco:advanced_malware_protection:5.0(9)
Cisco » Advanced Malware Protection » Version: 5.1(1)

cpe:2.3:a:cisco:advanced_malware_protection:5.1(1)
Cisco » Advanced Malware Protection » Version: 5.1(11)

cpe:2.3:a:cisco:advanced_malware_protection:5.1(11)
Cisco » Advanced Malware Protection » Version: 5.1(13)

cpe:2.3:a:cisco:advanced_malware_protection:5.1(13)
Cisco » Advanced Malware Protection » Version: 5.1(3)

cpe:2.3:a:cisco:advanced_malware_protection:5.1(3)
Cisco » Advanced Malware Protection » Version: 5.1(5)

cpe:2.3:a:cisco:advanced_malware_protection:5.1(5)
Cisco » Advanced Malware Protection » Version: 5.1(7)

cpe:2.3:a:cisco:advanced_malware_protection:5.1(7)
Cisco » Advanced Malware Protection » Version: 5.1(9)

cpe:2.3:a:cisco:advanced_malware_protection:5.1(9)
Cisco » Advanced Malware Protection » Version: 6.0(1)

cpe:2.3:a:cisco:advanced_malware_protection:6.0(1)

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2017-12317

Products

Pricing

Contact Us